Home
Vantage
Administrator Guide
Information about the Administration section of Vantage, and the tasks that you can do in this part of the software.
SAML integration
IdP configuration for SAML integration
It is important to understand the different parameters that are needed to configure your identity provider (IdP) for security assertion markup language (SAML) integration in Vantage.

Vantage
- Introduction
  An overview of Vantage.
- Administrator Guide
  Information about the Administration section of Vantage, and the tasks that you can do in this part of the software.
  - Administration
  - Migration
  - SAML integration
    - SAML integration configuration
      It is important to understand how Vantage uses security assertion markup language (SAML) single sign-on (SSO) for authentication.
    - IdP configuration for SAML integration
      It is important to understand the different parameters that are needed to configure your identity provider (IdP) for security assertion markup language (SAML) integration in Vantage.
    - Configure your IdP for SAML integration
      Before you configure Vantage's settings for single sign-on (SSO), you need to define a new application in your identity provider (IdP).
    - Configure Vantage for SSO
      Before you can use single sign-on authentication in Vantage, you must configure Vantage.
    - Troubleshooting SAML integration
      Methods that you can use to test that the security assertion markup language (SAML) integration has been successful.
    - Configure a Google Workspace SAML application
      You can integrate Google Workspace with Vantage to provide single sign-on (SSO) services. You should also refer to the Google Workspace documentation for more details on their solution. This topic describes Vantage-specific configuration details when using Google Workspace as your identity provider (IdP).
    - Configure an Okta enterprise application
      You can integrate Okta with Vantage. To do this you must create an enterprise application in Okta and assign users to it.
    - Configure an Azure Active Directory enterprise application
      You can integrate Azure Active Directory with Vantage. To do this you must create an enterprise application in Azure Active Directory and assign users to it.
- User Guide
  Information about the main features of Vantage and the tasks that you can do from the user interface (UI).
- Print format documentation
  A list of all the print-format documentation that is available for Vantage.

IdP configuration for SAML integration

It is important to understand the different parameters that are needed to configure your identity provider (IdP) for security assertion markup language (SAML) integration in Vantage.

Assertion Consumer Service

An assertion consumer service (ACS) specifies an /auth path, such as https://YOUR_VANTAGE_URL/api/v1/saml/auth, where YOUR_VANTAGE_URL is the custom uniform resource locator (URL) you use to access Vantage. For example, customer1.customers.us1.vantage.nozominetworks.io

In your identity provider (IdP), you should define this in the attribute statement.

If your Vantage instance is Federal Information Processing Standards (FIPS)-compliant, it uses a different ACS URL. For more details, see FIPS support.

Entity ID

The entity ID will be declared in the metadata eXtensible Markup Language (XML) file that you download from your IdP.

Nozomi Networks frequently sees entity IDs in the form: https://YOUR_IDP_URL/UNIQUE_ID, where:

YOUR_IDP_URL is the URL of your IdP and
UNIQUE_ID is the identifier that your IdP assigns to Vantage

Note: The Entity ID can also be known as:

Audience URI
Issuer
Reply URL
SP Entity ID

Your IdP vendor and security assertion markup language (SAML) implementation determine the content and format of an entity ID. The https://YOUR_IDP_URL/UNIQUE_ID format is common, but your IdP or specific SAML implementation might require different values.

This means that the complete URL you need to define in your IdP might be:

ACS: https://customer1.customers.us1.vantage.nozominetworks.io/api/v1/saml/auth
Entity ID: https://my.idp.net/0000-0000-0000-000-0000000000001/

Vantage can integrate with many IdP. For more details about specific IdP, see: